package com.jml.springsecurity;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.security.core.authority.AuthorityUtils;
import org.springframework.security.core.userdetails.UserDetails;
import org.springframework.security.core.userdetails.UserDetailsService;
import org.springframework.security.core.userdetails.UsernameNotFoundException;
import org.springframework.security.crypto.password.PasswordEncoder;
import org.springframework.social.security.SocialUser;
import org.springframework.social.security.SocialUserDetails;
import org.springframework.social.security.SocialUserDetailsService;
import org.springframework.stereotype.Component;

@Component
public class MyUserDetailsService implements UserDetailsService, SocialUserDetailsService {

	private Logger logger = LoggerFactory.getLogger(getClass());
	
	@Autowired
	private PasswordEncoder passwordEncoder;

	//表单登录进入这个方法
	@Override
	public UserDetails loadUserByUsername(String username) throws UsernameNotFoundException {
		logger.info("表单登录用户名:" + username);
		return buildUser(username);
	}

	//社交登录进入这个方法
	@Override
	public SocialUserDetails loadUserByUserId(String userId) throws UsernameNotFoundException {
		logger.info("社交登录用户Id:" + userId);
		//查询UserConnection表，通过providerId，providerUserId。获取userid，
		//该userid就是业务系统用户id，再根据userid获取用户详细信息
		//return new User("username","123456",AuthorityUtils.commaSeparatedStringToAuthorityList("admin"));
		return buildUser(userId);
	}

	private SocialUserDetails buildUser(String userId) {
		// 根据用户名查找用户信息
		//根据查找到的用户信息判断用户是否被冻结
		//加密的代码在@Bean中，可以是自定义的加密方法，这里只是调用
		String password = passwordEncoder.encode("123456");
		logger.info("数据库密码是:"+password);
		return new SocialUser(userId, password,
				//账户可用(逻辑删除)   账户过期   ，密码过期   账户锁定(冻结)
				true, true, true, true,
				//表示权限AuthorityUtils
				AuthorityUtils.commaSeparatedStringToAuthorityList("admin,user,ROLE_USER"));
	}

}
